Lucene search

UbuntuUSN-4480-1

HistorySep 01, 2020 - 12:00 a.m.

OpenStack Keystone vulnerabilities

2020-09-0100:00:00

ubuntu.com

openstack keystone

ubuntu 18.04

esm

keystone

ec2

credentials

permissions

oauth1

roles

ttl checks

authorization headers

CVSS2

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

7.2

Confidence

Low

EPSS

0.015

Percentile

87.1%

JSON

Releases

Ubuntu 18.04 ESM

Packages

keystone - OpenStack identity service

Details

It was discovered that OpenStack Keystone incorrectly handled EC2
credentials. An authenticated attacker with a limited scope could possibly
create EC2 credentials with escalated permissions. (CVE-2020-12689,
CVE-2020-12691)

It was discovered that OpenStack Keystone incorrectly handled the list of
roles provided with OAuth1 access tokens. An authenticated user could
possibly end up with more role assignments than intended. (CVE-2020-12690)

It was discovered that OpenStack Keystone incorrectly handled EC2 signature
TTL checks. A remote attacker could possibly use this issue to reuse
Authorization headers. (CVE-2020-12692)

OSVersionArchitecturePackageVersionFilename
Ubuntu18.04noarchkeystone< 2:13.0.4-0ubuntu1UNKNOWN
Ubuntu18.04noarchkeystone-doc< 2:13.0.4-0ubuntu1UNKNOWN
Ubuntu18.04noarchpython-keystone< 2:13.0.4-0ubuntu1UNKNOWN

OS	Version	Architecture	Package	Version	Filename
Ubuntu	18.04	noarch	keystone	< 2:13.0.4-0ubuntu1	UNKNOWN
Ubuntu	18.04	noarch	keystone-doc	< 2:13.0.4-0ubuntu1	UNKNOWN
Ubuntu	18.04	noarch	python-keystone	< 2:13.0.4-0ubuntu1	UNKNOWN